Your submission was sent successfully! Close

CVE-2014-1489

Published: 5 February 2014

Mozilla Firefox before 27.0 does not properly restrict access to about:home buttons by script on other pages, which allows user-assisted remote attackers to cause a denial of service (session restore) via a crafted web site.

Priority

Medium

Status

Package Release Status
firefox
Launchpad, Ubuntu, Debian
lucid Ignored
(reached end-of-life)
precise
Released (27.0+build1-0ubuntu0.12.04.1)
quantal
Released (27.0+build1-0ubuntu0.12.10.1)
saucy
Released (27.0+build1-0ubuntu0.13.10.1)
upstream
Released (27.0)